Smart card access management system, sharing method, and storage medium
First Claim
1. An access management system managing access to a smart card by a plurality of applications, comprising:
- an exclusion control unit allowing an application exclusive access to a smart card, in response to an exclusive access request for the smart card from the application, when the smart card has a logical channel not exclusively accessed by another application; and
an access control unit permitting the application allowed the exclusive access to access the smart card, in response to an access request for the smart card from the application, when the application has already been authenticated for the smart card.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and a method for managing access to a smart card by allowing authentication for each application (process) in response to access requests from a plurality of applications and processes. When an application containing a plurality of access processes for a smart card issues an access request for the smart card, the application issues an exclusive access request to an exclusion control mechanism, and issues the access request to an access control mechanism if the application is allowed exclusive access. If the application has not been authenticated, the access control mechanism prompts the application to input a PIN. If the application has already been authenticated, the access control mechanism permits the application to access the smart card. The application issues an exclusive access request/cancellation in an accessing process unit. Although a plurality of applications share a smart card, each application can be authenticated individually. The overhead from an authenticating process can be reduced.
-
Citations
13 Claims
-
1. An access management system managing access to a smart card by a plurality of applications, comprising:
-
an exclusion control unit allowing an application exclusive access to a smart card, in response to an exclusive access request for the smart card from the application, when the smart card has a logical channel not exclusively accessed by another application; and
an access control unit permitting the application allowed the exclusive access to access the smart card, in response to an access request for the smart card from the application, when the application has already been authenticated for the smart card. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An access management system managing access to a smart card by a plurality of applications, comprising:
-
exclusion control means for allowing an application exclusive access to a smart card, in response to an exclusive access request for the smart card from the application, when the smart card has a logical channel not exclusively accessed by another application; and
access control means for permitting the application allowed the exclusive access to access the smart card, in response to an access request for the smart card from the application, when the application has already been authenticated for the smart card.
-
-
10. A method for sharing a smart card and managing access to the smart card by a plurality of applications, comprising:
-
allowing an application exclusive access to a smart card, in response to an exclusive access request for the smart card from the application, when the smart card has a logical channel not exclusively accessed by another application; and
permitting the application allowed the exclusive access to access the smart card, in response to an access request for the smart card from the application allowed the exclusive access, when the application allowed the exclusive access has already been authenticated for the smart card.
-
-
11. An application including a plurality of accessing processes to one smart card, wherein:
-
an exclusive access request is issued for each accessing process each time the accessing process is started, and an exclusive access cancellation notification is issued each time each accessing process terminates; and
an authentication request is issued for a smart card to be accessed only in a first accessing process in said plurality of accessing processes.
-
-
12. A library of an application including a plurality of accessing processes to one smart card, wherein:
-
an exclusive access request is issued for each accessing process each time the accessing process is started, and an exclusive access cancellation notification is issued each time each accessing process terminates; and
an authentication request is issued for a smart card to be accessed only in a first accessing process in said plurality of accessing processes.
-
-
13. A storage medium readable by an information processing device, in which a plurality of applications are operated in parallel, storing a program used to direct the information processing device to perform the processes of:
-
allowing an application exclusive access to a smart card, in response to an exclusive access request for the smart card from the application, when the smart card has a logical channel not exclusively accessed by another application; and
permitting the application allowed the exclusive access to access the smart card, in response to an access request for the smart card from the application, when the application has already been authenticated for the smart card.
-
Specification